[TYPO3-dev] Like to hear your opinion regarding security
Steffen Kamper
info at sk-typo3.de
Tue Dec 1 14:41:42 CET 2009
Hi,
Sebastian Gebhard schrieb:
> Hi *,
>
> i'm planning to write an extension that lists BE-Users with
> OpenID-Identifiers on the Login-Screen (only suitable for sites with
> less than 20 BE-Users).
> When you click on a username you get logged in via OpenID with this user
> (if the OpenID belongs to you of course.)
>
> So basically the extension discloses Usernames and OpenID Identifiers.
> From my point of view these data are not a security risk, what do you
> think?
>
> What do you think about a 1-click-login?
>
i don't like to publish other users openID, this belongs to private data
i think.
vg Steffen
More information about the TYPO3-dev
mailing list